Several vulnerabilities have been discovered in the interpreter for the
Ruby language and the Rubygems included, which may result in
XML roundtrip attacks, the execution of arbitrary code, information
disclosure, StartTLS stripping in IMAP or denial of service.
More Stories
[tool] WatchGuard Firebox Web Update Unpacker
Posted by retset on Sep 25 A small utility for extracting file system images from "sysa-dl" update files. https://github.com/ret5et/Watchguard_WebUI_Unpacker Read...
CVE-2022-4244
A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and...
CVE-2022-4245
A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that...
CVE-2022-4137
A reflected cross-site scripting (XSS) vulnerability was found in the 'oob' OAuth endpoint due to incorrect null-byte handling. This issue...
bind-9.18.19-1.fc40 bind-dyndb-ldap-11.10-21.fc40
FEDORA-2023-687525fcca Packages in this update: bind-9.18.19-1.fc40 bind-dyndb-ldap-11.10-21.fc40 Update description: BIND 9.18.19 Security Fixes Previously, sending a specially crafted message over...
bind-9.18.19-1.fc37 bind-dyndb-ldap-11.10-17.fc37
FEDORA-2023-87502c4a93 Packages in this update: bind-9.18.19-1.fc37 bind-dyndb-ldap-11.10-17.fc37 Update description: BIND 9.18.19 Security Fixes Previously, sending a specially crafted message over...